- Issued:
- 2016-06-22
- Updated:
- 2016-06-22
RHBA-2016:1282 - Bug Fix Advisory
Synopsis
openstack-neutron bug fix advisory
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated OpenStack Networking packages that resolve various issues are now
available for Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse)
for RHEL 7.
Description
Red Hat Enterprise Linux OpenStack Platform provides the facilities for
building a private or public infrastructure-as-a-service (IaaS) cloud
running on commonly available physical hardware. This advisory includes
packages for:
- OpenStack Networking service
OpenStack Networking (neutron) is a virtual network service for OpenStack.
Just as OpenStack Compute (nova) provides an API to dynamically request and
configure virtual servers, OpenStack Networking provides an API to
dynamically request and configure virtual networks. These networks connect
'interfaces' from other OpenStack services (e.g. virtual NICs from Compute
VMs). The OpenStack Networking API supports extensions to provide advanced
network capabilities (e.g. QoS, ACLs, network monitoring, etc.)
Changes to the openstack-neutron component:
- The Linux iptables implementation of security groups includes a default rule to drop any INVALID packets, resulting in user-defined iptables rules being processed before the INVALID DROP rule. This would cause security groups to block legitimate traffic such as SCTP protocol as INVALID. With this update, user-defined iptables rules are now processed before the INVALID DROP rule. (BZ#1338971)
Solution
Before applying this update, ensure all previously released errata relevant to your system have been applied.
Red Hat Enterprise Linux OpenStack Platform 5 runs on Red Hat Enterprise Linux 7.2.
The Red Hat Enterprise Linux OpenStack Platform 5 Release Notes contain the following:
- An explanation of the way in which the provided components interact to form a working cloud computing environment.
- Technology Previews, Recommended Practices, and Known Issues.
- The channels required for Red Hat Enterprise Linux OpenStack Platform 5, including which channels need to be enabled and disabled.
The Release Notes are available at:
https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux_OpenStack_Platform/5/html/Release_Notes/index.html
This update is available through the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258
Affected Products
- Red Hat OpenStack 5.0 for RHEL 7 x86_64
Fixes
- BZ - 1341471 - neutron-openvswitch-agent service should automatically start openvswitch service
CVEs
(none)
Red Hat OpenStack 5.0 for RHEL 7
SRPM | |
---|---|
openstack-neutron-2014.1.5-14.el7ost.src.rpm | SHA-256: a52d1638ca11e8ec7e96d49d7a1c3a93ccd984ae3f66fb676fa0fd1b0bc27f3c |
x86_64 | |
openstack-neutron-2014.1.5-14.el7ost.noarch.rpm | SHA-256: f52c03fefaa43beed1e47d0b0aa1e49b240d3799b99624eb337536ac62caec20 |
openstack-neutron-bigswitch-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 0e5374942675a7ad89c23942ab016aec6665a1aa30dd4b150643a12dedb5e583 |
openstack-neutron-brocade-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 8afab3809375413ca10d39dbd01764407619a11700b3be1bb3162b5a6299b45a |
openstack-neutron-cisco-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 377351a2d41e36b2a52be437ecaa33e1b9c6770db668cc164e9462bfb4f41417 |
openstack-neutron-embrane-2014.1.5-14.el7ost.noarch.rpm | SHA-256: bda70e02bc600d402c2cafbd44efccb88096def75be3bb2ab01fe966631e304b |
openstack-neutron-hyperv-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 279b0564d39127c35d5bf2716f8c1d06a449ae806ad68850fa85303732b6f77e |
openstack-neutron-ibm-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 3fc07f8279f966875212af51f515e242ba84052446c5772f2d2157f411b4bd98 |
openstack-neutron-linuxbridge-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 0896c8cda364d1714bb4b97e7c8a1da85ce28cf1d1bfc0aa0fb568981ed3b701 |
openstack-neutron-mellanox-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 6c30fc6410a03390315b61d602b0fb434b95815db002dd0e087aef5445a078a1 |
openstack-neutron-metaplugin-2014.1.5-14.el7ost.noarch.rpm | SHA-256: e74de200569a66db8de7c20365eae2594b4c897536c26d1308a4f05585b1ddb9 |
openstack-neutron-metering-agent-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 55a75ab338855fd236d582e0c5f53d2f27ea72fe2659af93c11a770e095c2e36 |
openstack-neutron-midonet-2014.1.5-14.el7ost.noarch.rpm | SHA-256: a7ab97a15f78ca991158f5e9fccf01dcb4ad6cb2265e0cd755645021882390c5 |
openstack-neutron-ml2-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 21f149197e0843202d46859661c5fc6a2052a621a60c6469da0017df458e8a6a |
openstack-neutron-nec-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 8c4681cba03a4fbaf67586ddf4aecd487b2d6a3fe0a48fb4ebdac1c60991efc4 |
openstack-neutron-nuage-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 37aff8f2210faa2b010e538f925d8e8f565ba3214d8d864398bdeb554ad77336 |
openstack-neutron-ofagent-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 18bbb4272c45abf6601a7dd93685465c495abe26a953f796b05318a56fa18313 |
openstack-neutron-oneconvergence-nvsd-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 090c6a8a0b397ed685659dafafb12f6fb03a3d7e44ae5e8ed42ce71b04e28da5 |
openstack-neutron-openvswitch-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 0689aef0b11450e110475ee68e5fb0a288446ee8166274f0c8db13f4dbcb3d7c |
openstack-neutron-plumgrid-2014.1.5-14.el7ost.noarch.rpm | SHA-256: b2a0fa8ad9fdb34ae4205e7938c0e8d796827aefc07e9b0bc8aeeef01c24146b |
openstack-neutron-ryu-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 05319fa50b2616674836a4dba28b9ecbe3caf6c6f0f576c10af61e7fe9a5e44f |
openstack-neutron-vmware-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 067f60a662585b56a5666b6c4a413a0b04c0364154f53065edfa45fb2d8a6cc4 |
openstack-neutron-vpn-agent-2014.1.5-14.el7ost.noarch.rpm | SHA-256: a9bf0c7c8429ce2a005e4661fd74d221f5dfee1b8a60aeb684faad186def7fd4 |
python-neutron-2014.1.5-14.el7ost.noarch.rpm | SHA-256: 8ca7e2e43d2b518803a95126ae8f07bc2a077c0e2f25f089a224d36113e527ad |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.